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IN THE CLAIMS 

Please amend claims 1, 2, 7, 8, 10, 11, 16, 17, 19, 20, 24, 25, 26, 28, 29, 33, 34, and 35,^ 

follows: 

1 . (CURRENTLY AMENDED) A system for controlling access to digital services 
comprising; 

(a) a control center configured to coordinate and provide digital services; 

(b) an uplink center configured to receive the digital services from the control center and 
transmit the digital services to a satellite; 

(c) the satellite configured to: 

(i) receive the digital services from the uplink center; 

(ii) process the digital services; and 

(iii) transmit the digital services to a subscriber receiver station; 

(d) the subscriber receiver station configured to: 

(i) receive the digital services from the satellite; 

(if) control access to the digital services through an integrated receiver/decoder 

(IRD); 

(e) a conditional access module (CAM) cornmurucatively coupled to the IRD, wherein 
the CAM comprises: 

(i) a protected n onvolatile memory component, wherein: 

(1) the protected n onvolatile memory component is used to contain state 
information to provide desired functionality and enforce one or more security 
policies for accessing the digital services; and 

(2) the protected n onvolatile memory component is protected from 
modification such that the protected n onvolatile memory component is read only; 
and 

(3) access to the protected n onvolatile memory component is isolated; 

(ii) a microprocessor's unprotected nonvolatile memory component wherein 
programming control and a program ming r harge pump are .shared by both die protected 
nonvolatile memory component and die rnicroprocessor's un-prorccted nonvolatile memory 
component: 
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(iiT) a hidden non-modifiable identification number embedded into the protected 
nonvolatile memory component, wherein: 

(1) the identification number uniquely identifies the CAM; and 

(2) the identification number is used to limit a cloning attack wherein 
said cloning attack comprises copying the identification number to a new CAM; and 
(«*iv) a fixed state custom logic block, wherein the protected nonvolatile memory 

component is not direcdy accessible via a system bus and access to the protectedn onvolatilc 
memory component is limited to the custom logic block. 

2. (CURRENTLY AMENDED) The system of claim 1 wherein the prorected 
nonvolatile memory component is isolated such that a system input/output module, 
microprocessor, or external environment is prevented from direct access to the identification 
number. 

3. (ORIGINAL) The system of claim \ wherein the identification number is 
embedded after manufacturing. 

4. (ORIGINAL) The system of claim 1 wherein the custom logic block is permitted to 
read the identification number. 

5. (ORIGINAL) The system of claim 4 wherein a function defined in the custom logic 
block specifies an operation to be performed using the hidden identification number. 

6. (PREVIOUSLY PRESENTED) The system of claim 1 further comprising a 
onetime programmable memory protected by a hardware fuse that isolates the identification number 
from a microprocessor after the identification number is written. 

7. (CURRENTLY AMENDED) The system of claim 1 wherein the custom logic 
block is configured to embed the identification number into the prorected n onvolatile memory 
component 



-3- 



PA(S 6/16 a RCVD AT 6/23«006 6:56:57 PM [Easten DayCght Trnie] 1 SVR;USPTO^XRF-3/15 f DNlS:2r38300 * CSID:3109640941 ^ DURATION (mnhss):05^6 



06/23/2006 15 : 59' FAX 3109640941 



P & L LEGAL 



©007/016 



8. (CURRENTLY AMENDED) The system of claim 1 further comprising a 
microprocessor that is configured to embed the identification number into the protected n onvolatile 
memory component. 

9. (ORIGINAL) Hie system of claim 1 wherein access to the digital services is rejected 
when the hidden non-modifiable identification number is on a list of unauthorized identification 
numbers. 

10. (CURRENTLY AMENDED) A method for limiting unauthorized access to digital 
services comprising: 

(a) embedding a hidden non-modifiable identification number into a protected 
nonvolatile memory component, wherein: 

(i) the protected nonvolatile memory component is used to contain state 
information to provide desired functionality and enforce one or more security policies for 
accessing the digital services; 

(ii) the hidden non-modifkble identification number uniquely identities a device 
containing the protected nonvolatile memory component; 

(iii) access to the digital services is based on access rights associated with the 
hidden non-modifiable identification number; and 

(iv) the identification number is used to limit a cloning attack wherein said 
cloning attack comprises copying the identification number to a new device; and 

(b) isolating access to the protected n onvolatile memory component *\±eh. that wherein: 

(i) access to the prelected n onvolatile memory component is limited to a fixed 

state custom logic block* 

(ii) the protected n onvolatile memory component is protected such that the 
protected n onvolatile memory component is read onlyy-sml-i 

Ciix) the protected n onvolatile memory component is not directly accessible via a 
system bus ; and 

(iv) prog rammin g control and a programming charge pump are jjharcd by boch 
the protected nonvolatile memory componc nr and a microprocessor's un-protected 
nonvolatile memory component . 
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1 1 . (CURRENTLY AMENDED) The method of claim 10 wherein the protected 
nonvolatile memory component is isolated by preventing a system input/ output module, 
microprocessor, or external environment from direct access to the identification number. 

12. (ORIGINAL) The method of claim 10 wherein the identification number is 
embedded after manufacturing. 

13. (ORIGINAL) The method of claim 10 wherein the custom logic block is permitted 
to read the identification number. 

14. (ORIGINAL) The method of claim 13 wherein a function defined in the custom 
logic block specifies an operation to be performed using the hidden identification number. 

15. (PREVIOUSLY PRESENTED) The method of claim 10 wherein the identification 
number is embedded using a onetime programmable memory protected by a hardware fiise that 
isolates the identification number from a microprocessor after the identification number is written. 

1 6. (CURRENTLY AMENDED) The method of claim 10 wherein the custom logic 
block embeds the identification number into the protected nonvolatile memory component. 

1 7. (CURRENTLY AMENDED) The method of claim 1 0 wherein a microprocessor 
embeds the identification number into the protected n onvolatile memory component. 

1 8. (ORIGINAL) The method of claim 1 0 further comprising rejecting access to the 
digital services when the hidden non-modifiable identification number is on a list of unauthorized 
identification numbers. 

19. (CURRENTLY AMENDED) A conditional access module (CAM), comprising: 

(a) a microprocessor: 

(b) an un-protcctcd nonvolatile memory component connected to the microprocessor; 

(c) a protected n onvolatile memory component, wherein: 

(i) the pro reeled n onvolatile memory component is used to contain state 
information to provide desired functionality and enforce one or more security policies for 
accessing digital services; and 
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(ii) the protected nonvolatile memory component is protected from 
modification such that me protected n onvolatile memory component is read only; and 

(iii) access to the protected n onvolatile memory component is isolated; 

(iv) programming control and a pwgrflmm i n g ch arffl ' jiump are shared by hot h 
tl\c protected nonvolatile memory component and die un-protected nonvolatile memory 
component: 

(b) a hidden non-modifiable identification number embedded into the protected 
nonvolatile memory component, wherein: 

(i) the identification number uniquely identifies the CAM; and 

(ii) the identification number is used to limit a cloning attack wherein said 
cloning attack comprises copying the identification number to a new CAM; and 

(c) a fixed state custom logic block, wherein the protected nonvolatile memory 
component is not directly accessible via a system bus and access to the prr?tcc_tc_cLn onvolatUe 
memory component is limited to the custom logic block. 

20. (CURRENTLY AMENDED) The CAM of daim 19 wherein the protected 
nonvolatile memory component is isolated such that a system input/output module, 
microprocessor, or external environment is prevented from direct access to the identification 
number. 

21. (ORIGINAL) The CAM of claim 19 wherein the identification number is 
embedded after manufacturing. 

22. (ORIGINAL) The CAM of claim 19 wherein the custom logic block is permitted to 
read the identification number. 

23- (ORIGINAL) The CAM of claim 22 wherein a function defined in the custom logic 
block specifies an operation to be performed using the hidden identification number. 

24. (CURRENTLY AMENDED) The CAM of claim 19 further comprising a onetime 
programmable memory protected by a hardware fuse that isolates the identification number from a 
the m icroprocessor after the identification number is written. 
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25. (CURRENTLY AMENDED) The CAM of rkim 19 wherein die custom logic 
block is configured to embed the identification number into the protected n onvolatile memory 
component. 

26. (CURRENTLY AMENDED) The CAM of claim 1 9 further comprising a w herein 
the microprocessor that-is configured to embed the identification number into the prorcded 
nonvolatile memory component. 

27. (ORIGINAL) The CAM of claim 19 wherein access to the digital services is rejected 
when the hidden non-modifiable identification number is on a list of unauthorized identification 
numbers. 

28. (CURRENTLY AMENDED) An article of manufacture for limiting unauthorised 
access to digital services comprising: 

(a) means for embedding a hidden non-modifiable identification number into a 
protected nonvolatile memory component, wherein: 

® the protected n onvolatile memory component is used to contain state 
information to provide desired functionality and enforce one or more security policies for 
accessing the digital services; 

(ii) the hidden non-modifiable identification number uniquely identifies a device 
containing the protected n onvolatile memory component; 

(ui) access to the digital services is based on access rights associated with the 
hidden non-modifiable identification number; and 

(kv) the identification number is used to limit a cloning attack wherein said 
cloning attack comprises copying the identification number to a new device; and 

(b) means for isolating access to the protected n onvolatile memory component such that 
wherein: 

ii) access to the identification number is limited to a fixed state custom logic 

block?-; 

Cti) the protected nonvolatile memory component is protected from 
modification such that the protected n onvolatile memory component is read oulyr«*d-; 
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(iifl the protected n onvolatile memory component is not directly accessible via a 
system bus ; and 

(iv)_ _ programming control and a pmgr^mmm^charge pump SUSS shared by both 
the, protected nonvolatile, memory compon^T and a microprocessor 7 * unprotected 
nonvolatile memory component . 

29. (CURRENTLY AMENDED) The article of manufacture of claim 28 wherein the 
protected n onvolatile memory component is isolated by preventing a system input/output module, 
microprocessor, or external environment from direct access to the identification number. 

30. (ORIGINAL) The article of manufacture of claim 26 wherein the identification 
number is embedded after manufacturing. 

31. (ORIGINAL) The article of manufacture of claim 28 wherein the custom logic 
block is permitted to read the identification number. 

32. (ORIGINAL) The article of manufacture of claim 31 wherein a function defined in 
the custom logic block specifies an operation to be performed using the bidden identification 
number. 

33. (CURRENTLY AMENDED) The article of manufacture of claim 28 wherein the 
identification number is embedded using a onetime programmable memory protected by a hardware 
fuse that isolates the identification number from ^thj^nucroprocessor after the identification 
number is written. 

34. (CURRENTLY AMENDED) The article of manufacture of claim 28 wherein the 
custom logic block embeds the identification number into the procecced n onvolatile memory 
componcn t. 

35. (CURRENTLY AMENDED) The article of manufacture of claim 28 wherein a-thc 
microprocessor embeds the identification number into the protected nonvolatile memory 
component 
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36. (ORIGINAL) The article of manufacture of claim 28 further comprising means for 
rejecting access to the digital services when the hidden non-modifiable identification number is on a 
list of unauthorized identification numbers. 
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